Company integrates technology from NanoSec deal into MVISION Cloud
Three months after acquiring NanoSec, McAfee is leveraging the deal by integrating container security capabilities into its MVISION Cloud security platform.
The Lowdown: The company announced Tuesday that MVISION Cloud for Containers now integrates the technology for segmenting traffic between containers with McAfee’s cloud access security broker (CASB) and cloud security posture management (CSPM) solution to bring greater security and governance to container workloads and accelerate application delivery.
The Details: The new offering brings container security into McAfee’s unified platform rather than dealing with it as separate from other Infrastructure-as-a-Service (IaaS) security tools, which has made securing containers a complex and costly proposition, though a necessary one given the growing use of containers in an increasingly cloud-based world. McAfee’s MVISION Cloud integrates with many DevOps tools.
Key features in MVISION Cloud for Containers include:
> CSPM: Configuration audit checks for containerized workloads are integrated into the solution to ensure container platforms comply with standards. Security checks are run on the container stack, such as the configuration of the virtual machine the container runs on.
> Visibility scanning: The offering will scan container images to detect and prevent the use of weak or exploitable components.
> “Shift left” for DevOps: Developers can run CSPM and vulnerability scanning earlier in the application development process, ensuring that they get important information during the build process. The McAfee solution also monitors the lifecycle to prevent configuration drift on production deployments of containers.
The Impact: Containers and the Kubernetes container orchestration technology have become important tools for developers as they create applications for cloud environments and digital enterprises. Analysts with 451 Research predict that the container market will grow 30% a year to 2022, when it will reach more than $4.3 billion. Gartner says about 30% of organizations are running containerized workloads in production now and that the number will grow more than 75% by 2022.
Background: “McAfee MVISION Cloud for Containers extends our leading data security, threat prevention, governance, and compliance capabilities of the MVISION Cloud platform to now cover containers in addition to SaaS, IaaS, and PaaS environments,” said Rajiv Gupta, senior vice president of cloud security at McAfee. “By delivering consistent security across an organization’s cloud stack and by integrating that security natively into DevOps processes and toolsets to discover and address security issues before applications are deployed, McAfee is further extending its leadership in the cloud security space and providing more proof of its commitment to help customers leverage the power and security of the cloud.”
“MVISION Cloud gives our company the freedom to choose the best application architecture without having to develop and implement new security tools,” said Robert Fish, enterprise security architect at Electronic Arts (EA). “We also utilize its security capabilities for the non-container aspects of IaaS Security, including compute, storage, and networking.”